[olug] January 2015 OLUG Meeting - Tues Jan 6th, 2015 @ 6:30 PM

Rob Townley rob.townley at gmail.com
Tue Jan 6 16:47:07 CST 2015


I do not have a wireless to wired bridge i could take out of production, so
it does not sound like it would be worth it to bring CentOS firewall.
However, since ipset and iptables are working again, we could demo how
quick an IP is banned and unbanned.

On Tue, Jan 6, 2015 at 4:46 PM, Rob Townley <rob.townley at gmail.com> wrote:

> On the samba mailing list, there is something multicast and firewall
> related ... Bonjour and related systems such as AVAHI or mDNS may
> automatically make your domain name .local*|.lan.   Further, many tutorials
> on how to set up your private network domain use .local or .localdomain or
> .lan.   It is fine as long as queries for private .lan|.local|.locahost do
> not make it out of your private dns infrastructure.
>
> Would you believe about 26% of queries to the root domain name servers
> are for TLDs like .local?  "10 invalid TLDs represent 10% of the total
> query load at the root servers."  These are 2009 numbers.
> https://www.icann.org/en/system/files/files/sac-045-en.pdf
>
> DNS servers need to have a default list of  top level domains that are
> never forwarded.  To enforce it, having the internet gateway REJECT queries
> from leaving the LAN would be nice.  It makes your LAN faster as well.
>
> On Tue, Jan 6, 2015 at 8:57 AM, Kevin <sharpestmarble at gmail.com> wrote:
>
>> The one problem is that I have class on Tuesday nights. That's why I
>> haven't been able to come since March.
>> On Jan 5, 2015 6:52 PM, "Rob Townley" <rob.townley at gmail.com> wrote:
>>
>> How about we hack on stuff.  Get Kevins upnp problem solved as multicast
>> is  hard. My experience is more along the lines of the  much simpler drbl
>> multicast.  We should document it all devops style via github.  Kevin, can
>> you bring your 3G router so we know what working upnp looks like.
>>
>> I could bring a CentOS Desktop firewall.
>> It is 10 years old so not great for compiling.   Laptop with USB Ethernet
>> for a second port and hostapd would be much easier.
>>
>> Last night I put together a list of multicast commands.  One of which is
>> checking multicast forwarding:
>>   sysctl -a | grep mc
>>
>> Doing the same with BSD or Debian would be good.
>>
>> Just one problem.... Does the  room really no way to have ethernet ?
>> On Jan 1, 2015 6:42 AM, "Jon Larsen" <jon at jonlarsen.us> wrote:
>>
>> > The January OLUG Meeting is coming up on Tuesday, January 6th at 6:30
>> PM in
>> > The Combine Room (formerly the AIM Training Lab), 1905 Harney Street
>> Suite
>> > 215 in the Exchange Building in Omaha, NE.
>> >
>> > Presentation: TBD
>> > Presenter: TBD
>> >
>> > The Meeting will be streamed live on Google+ Hangouts on Air - we do
>> > sometimes experience technical difficulties with our streaming setup.
>> > Attending the meeting in person does work around most technical
>> > difficulties. :)
>> >
>> >
>> >
>> > I'm looking for a presenter for Tuesday.  Can anyone present?  (sorry
>> this
>> > is late getting posted, $dayjob and $personal has been pretty busy these
>> > past few months)
>> >
>> > Jon L.
>> > _______________________________________________
>> > OLUG mailing list
>> > OLUG at olug.org
>> > https://lists.olug.org/mailman/listinfo/olug
>> >
>> _______________________________________________
>> OLUG mailing list
>> OLUG at olug.org
>> https://lists.olug.org/mailman/listinfo/olug
>>
>>
>


More information about the OLUG mailing list